Cyber Security Officer
About Us:
WebFM is a leading provider of smart solutions for the construction and facility management sectors. The company was established in 2000 and has developed a reputation for providing sound and reliable solutions through its cloud-based systems like Omtrak and its FM Consulting services.
The company has via its Omtrak document management delivered over 3500 projects with a combined value more than $200b. Its MPlan and FM Consult arms have delivered innovative and cost saving improvements in asset and facility management to over $60b in assets.
Clients include Defence, Health, Universities, Transport, Infrastructure, Schools, Commercial, Retail, Residential and specialist research organisations. Our work is delivered globally across Australia, NZ, Asia, Middle East, USA and Canada.
An opportunity has arisen to join a well-established, international Company providing a range of quality innovative web solutions in the facility and construction sectors.
One of the industry's truly innovative leaders, the Company has a very strong market presence throughout Australia and NZ as well as USA, UK, Asia and the Middle East. The company has developed a well-defined Brand presence and is recognised by our customers as a provider of quality services for its cloud-based systems and its complementary FM Consulting services.
The company has ISO 9001 and 27001 accreditation and provides its staff with an employment environment based on support, respect and the opportunity to explore and expand as a team and as individuals.
Responsibilities:
Define and deliver our cybersecurity SaaS roadmap and oversee our cloud platforms:
- Lead a comprehensive security program, including Security Operations, Incident Response, Threat Intelligence, and Vulnerability Management.
- Develop, implement, and maintain a secure architecture for our AWS environments, requiring strong expertise in AWS cloud platform architecture.
- Analyze security logs to identify potential risks and provide practical risk remediation recommendations. Configure alerts and promptly respond to identified threats or vulnerabilities using SIEM tools.
- Lead incident response and management efforts in the event of security breaches or incidents, coordinating responses, investigations, and recovery efforts.
Coordinate all activities related to securing company information:
- Maintain ISO 27001, ISMS documentation, policies, and procedures, and measure compliance.
- Conduct regular security assessments and audits to identify and address potential risks and weaknesses in systems.
- Respond to client security questionnaires.
- Provide guidance and support to team members on security-related issues and concerns.
What will you bring?
- In-depth knowledge of AWS.
- Bachelor's degree in Comp Sci, IT or a related field.
- Minimum 8 years in cyber or cloud security.
- Strong understanding of cloud security best practices and governance requirements.
- Experience working in high compliance environments (e.g. ISO 27001).
- Experience in security systems, including firewalls, intrusion detection systems, vulnerability scanners, anti-virus software, authentication systems, log management, content filtering, SIEMs, etc.
- Cloud security/cloud hardening best practices.
- Excellent problem-solving skills.
- Strong communication and interpersonal skills to effectively collaborate with various teams and stakeholders.